04-02-2010 06:32 PM - edited 03-06-2019 10:27 AM
So I've got my route map configuration live, and I'm trying to bind it to vlan50.
There is no available command in the interface config to do a "ip policy route-map name"
What am I missing here?
Switch(config-if)#ip ?
Interface IP configuration subcommands:
access-group Specify access control for packets
accounting Enable IP accounting on this interface
address Set the IP address of an interface
admission Apply Network Admission Control
auth-proxy Apply authenticaton proxy
authentication authentication subcommands
bandwidth-percent Set EIGRP bandwidth limit
bgp BGP interface commands
broadcast-address Set the broadcast address of an interface
cef Cisco Express Forwarding interface commands
cgmp Enable/disable CGMP
dampening-change Percent interface metric must change to cause update
dampening-interval Time in seconds to check interface metrics
dhcp Configure DHCP parameters for this interface
directed-broadcast Enable forwarding of directed broadcasts
dvmrp DVMRP interface commands
hello-interval Configures EIGRP-IPv4 hello interval
helper-address Specify a destination address for UDP broadcasts
hold-time Configures EIGRP-IPv4 hold time
igmp IGMP interface commands
information-reply Enable sending ICMP Information Reply messages
irdp ICMP Router Discovery Protocol
load-sharing Style of load sharing
local-proxy-arp Enable local-proxy ARP
mask-reply Enable sending ICMP Mask Reply messages
mrm Configure IP Multicast Routing Monitor tester
mroute-cache Enable switching cache for incoming multicast packet
mtu Set IP Maximum Transmission Unit
multicast IP multicast interface commands
next-hop-self Configures EIGRP-IPv4 next-hop-self
ospf OSPF interface commands
pim PIM interface commands
probe Enable HP Probe support
proxy-arp Enable proxy ARP
rarp-server Enable RARP server for static arp entries
redirects Enable sending ICMP Redirect messages
rgmp Enable/disable RGMP
rip Router Information Protocol
route-cache Enable fast-switching cache for outgoing packets
router IP router interface commands
sap Session Advertisement Protocol interface commands
security DDN IP Security Option
split-horizon Perform split horizon
sticky-arp Allow the creation of sticky ARP entries
summary-address Perform address summarization
tcp TCP interface commands
unnumbered Enable IP processing without an explicit address
unreachables Enable sending ICMP Unreachable messages
urd Configure URL Rendezvousing
verify Enable per packet validation
vrf VPN Routing/Forwarding parameters on the interface
wccp WCCP interface commands
Switch(config-if)#ip
04-02-2010 07:05 PM
Hi,
I suspect the IOS version that you are running does not have the correct feature set? For specific routing features you will require IP Services IOS.
Regards
Allan.
04-02-2010 07:56 PM
Hi Bill,
To configure PBR on 3650, you need to have ip services software, and sdm prefer routing must be used.
HTH,
Lei Tian
04-03-2010 12:24 PM
If only the answer were that simple. I am running IP Services, as well as have the SDM profile for routing enabled.
Switch#sho sdm prefer
The current template is "desktop routing" template.
The selected template optimizes the resources in
the switch to support this level of features for
8 routed interfaces and 1024 VLANs.
number of unicast mac addresses: 3K
number of IPv4 IGMP groups + multicast routes: 1K
number of IPv4 unicast routes: 11K
number of directly-connected IPv4 hosts: 3K
number of indirect IPv4 routes: 8K
number of IPv4 policy based routing aces: 0.5K
number of IPv4/MAC qos aces: 0.5K
number of IPv4/MAC security aces: 1K
Switch#
04-03-2010 01:34 PM
Hmmm, scratch that question - you are in interface mode. Not thinking tonight
Jon
04-03-2010 02:27 PM
Jon,
LOL, yes... you are right, the ip routing isn't in the interface config.
Yes, ip routing is configured - I am routing properly between vlans...
I'm still baffled.
~B
04-03-2010 02:37 PM
byazji wrote:
Jon,
LOL, yes... you are right, the ip routing isn't in the interface config.
Yes, ip routing is configured - I am routing properly between vlans...
I'm still baffled.
~B
Bill
You are running "desktop routing" template whereas you should be running "routing" template ie.
sdm prefer routing
Jon
04-03-2010 03:05 PM
Hi,
From the output I believe that the routing template is already enforced as there are number of policy based routing aces available, ordinarily the default is zero, although I could be mistaken.
This is an example of output from the show sdm prefer routing command entered on a switch:
Switch# show sdm prefer routing
"desktop routing" template:
The selected template optimizes the resources in
the switch to support this level of features for
8 routed interfaces and 1024 VLANs.
number of unicast mac addresses: 3K
number of igmp groups + multicast routes: 1K
number of unicast routes: 11K
number of directly connected hosts: 3K
number of indirect routes: 8K
number of policy based routing aces: 512
number of qos aces: 512
number of security aces: 1K
How is your route-map configured? The reason I ask is that there are certain unsupported configurations which prohibit the configuration from be applied. However the route-map can still be applied in this case but will throw an error in the process. For example, the only issue that I can find regarding PBR on 12.2(53)SE1 is as follows:-
(Catalyst 3750 or 3560 switches and Cisco EtherSwitch service modules) A route map that has an ACL with a
Differentiated Services Code Point (DSCP) clause cannot be applied to a
Layer 3 interface. The switch rejects this configuration and displays a
message that the route map is unsupported. There is no workaround.
(CSCea52915)
Regards
Allan.
04-03-2010 03:13 PM
Allan
However the route-map can still be applied in this case but will throw an error in the process.
That's what made me think it might be the template because as you say the route-map can still be applied but Bill doesn't even have the option to apply it regardless of whether it would be accepted or not.
Be interesting to see Bill's response
Jon
04-03-2010 03:23 PM
Allan
Actually you are right (+5 for correcting me). I was thinking of the 3750 which has a separate desktop routing template. I think i'll just drop out of this thread.
Bill apologies, i'm normally better than this i promise
Jon
04-03-2010 03:38 PM
Jon,
Got to admit this is a strange one, utimately I think that this one maybe one for TAC as it is possibly a software defect? I wasn't entirely sure whether there was a different template as you mentioned, but assumed the routing template was enabled as the policy base aces were not zero.
Allan.
04-04-2010 06:05 PM
OK, so to reply the last few messages.
Yes, the output of my show sdm prefer is based on my running of the command sdm prefer routing and rebooting a week or so ago.
And, my route map configuration :
access-list 10 permit 192.168.50.50
route-map out_asa permit 10
match ip address 10
set ip next-hop 192.168.99.1
I'm not using any of the non-support commands (that I am aware of from what I researched.). I'm just baffled why when I'm in the interface configuration, I do a ip ? - and the option for policy isn't even there!
04-06-2010 07:26 AM
I had a thought this AM, and I was on the mark.
On the vlan50 interface, I was doing WCCP redirection.
You can't do WCCP and a route map on the same interface. Dang!!.
01-16-2011 05:09 AM
plz download this IOS 122-55.SE1 . This is a new release of cisco for 3560. in this software there is a support for route-map to interface. Thanx
07-24-2014 12:58 PM
Me esta ocurriendo exactamente lo mismo
pero creo que ya lo tendre resuelto gracias a sus post.
I have the same problem
but I hope to resolve with your post
Theank you very much.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide